Information Security Systems

Bachelor Degree in Information Security Systems
Сipher: 5В100200
Name: Information Security Systems

 

Purpose

The program aims to develop core competencies in the fields of computer networks security, application security, and information security management.

To fulfill the growing national need of well-trained professionals to work in a wide range of roles to protect information systems in all types of organizations, including research and academia.

To contribute towards need of protecting national information infrastructure from all kinds of threats.

To play an effective role in international efforts to make the cyberspace safe, secure and reliable for the national and international communities.

To provide students the basic knowledge of information security systems to the study of new quantitative relations and spatial forms of the real world in accordance with the requirements of technology and natural science.

The program aims to develop core competencies in the fields of computer networks security, application security, and information security management.

Disciplines

State Compulsory Module

  • History Kazakhstan
  • Kazakh (Russian) Language for Professional Purposes
  • Professionally-Oriented Foreign Language 1
  • Professionally-Oriented Foreign Language 2 
  • Philosophy  

Social and Communicative Module 

 

 

  • Psychology
  • Theoretical and Applied Political Science
  • Ethics Social Success
  • Culture and Religion
  • General and Applied Sociology
  • Human Life Safety
  • Ecology and Sustainable Development
  • Kazakhstan Law
  •  Fundamentals of Economics

Vocational modules:

Natural Sciences (STEM)

  • Information and communication technologies
  • Physics
  • Microelectronics

Basic Professional Modules

Fundamental mathematics

Module 1: Fundamental mathematics

  • Mathematical analysis – I
  • Mathematical analysis – II

Module 2: Discrete Mathematics

  • Discrete Mathematics
  • Numbers theory

Module 3: Information theory

  • Theory of probability and mathematical statistics
  • Information theory

Fundamentals informatics

Module 4: Computer Architecture

  • Computer Architecture
  •  Operation systems

Module 5: Network and database theory

  • Computer networks and telecommunications
  • Database theory

Algorithms and basics of programming

Module 6: Basics of programming

  • Programming languages
  • Object-Oriented Programming

Module 7: Algorithms and data structures

  • Algorithms and data structures
  • Design and analysis of algorithms

Foundations of information security

Module 8: Introduction to Information Security

  • Fundamentals of Information Security
  • Access Control
  • Network security 1
  • Network security 2

Module 9: Cryptology

  • Cryptography and Cryptanalysis 1
  • Cryptography and Cryptanalysis 2

Module 10: Cybersecurity

  • Information Security Management
  • Computer Forensics

Track 1: «Analysis and development of cryptographic systems»

Module 1: Cryptography And Cryptanalysis

  • Cryptanalysis of block ciphers
  • Cryptographic analysis methods open cryptography

Module 2: Cryptography And Protocols

  • Analysis of information security systems
  • Cryptographic protocols

Module 3: Security Management and Programming

  • Information Security Management
  • Programming of cryptographic systems

Track 2: «Architecture and design security»

 

Module 1: Security systems and management

  •  Secure Operating Systems
  •  Information Security Management

Module 2: Web and Software Security

  • Web Security
  • Security software

Module 3: Security monitoring and analysis

  • Security monitoring system
  • Analysis of information systems security  

Interdisciplinary Module

  • Innovative Entrepreneurship (trade-wise)
  • Intellectual Property Law
  • Econometrics
  • Projects Management
  • Accounting and Audit
  • Geoinformatics
  • Latin Language
  • Culture of Speech and Language Communication
  • Al-Farabi and Contemporaneity

Internship

  • Academic Internship
  • Industrial Internship I
  • Industrial Internship II
  • Industrial Internship III

Final Certification

 Thesis




Employability

This qualification will enable graduates to gain employment in diverse roles within the business and IT areas. Graduates of the department can work as IT Manager, Systems Administrator, Computer Design Specialist, IT Support Specialist, Information Systems Manager, Information security analysts, Researcher of Security algorithms, or gain employment in an information technology organization, including banks, insurance companies, commercial organizations, research organizations, educational institutions.

Further studies

Access to related second-cycle degree programs, and - with some further work - to un-related second cycle degree programs. Access to teacher training (educa­tion track); to Research and Pedagogic training.

Learning & Teaching Approaches

The general learning style is task-based learning. There are some lecture courses, accompanied by workshops and seminars. Most learning is in small groups (up to 20 persons) and emphasizes discussion, preparation of presentations autonomously and in small groups. In the final year about half time is dedicated to the final thesis, which is also presented and discussed with a discussion group of teachers and peers.

Assessment methods

Presentations: oral (power point) and written; examina¬tions: oral for the conceptual parts; written for the basic of information systems; students keep a portfolio. Information Systems Lab: Cisco and Perco laboratory classes.

Program competences

GENERIC

Critical and self-critical abilities: ability to think in scientific terms, propose problems, gather data, analyze them and propose findings.

Written and oral communication in one’s own language: ability to write and speak correctly in many languages (Kazakh, Russian or English).

Ability to work autonomously, taking initiatives and managing time: ability to organize complex efforts over a period of time, producing the required result on schedule.

Ability to work with others in a multidisciplinary multi-national setting.

Capacity to handle effectively with practical problems

 

SUBJECT SPECIFIC

—     Basic general knowledge: Formation of the basic theoretical knowledge and practical skills with PC application packages important for use in professional work and better mastery of knowledge of general and special subjects, study of effective processing technology of various kinds of information through computer technology, human interaction with production equipment and related software. Knowledge of modern computer and telecommunication tools, perspectives and tendency of information technologies development, knowledge of information systems design and exploitation, knowledge of information systems components development   technologies.

—     Applying knowledge in practice: ability to work with various types of computer systems;

—     ability to apply algorithmic languages, use of standard software to the solution of applied tasks, use of packages of applied programs and databases, machine graphics tools, expert systems and knowledge bases;

—     ability to process the received results and to analyze them, ability to represent results of the done work with use of the latest information technologies;

—     ability to use knowledge of the basic principles of a sustainable development of the nature and society in professional activity;

—     ability to analyze a system, and identify and define the security risks and requirements for secure operation

—     ability to design, implement and evaluate a computer-based system, process, component or program to meet security needs

—     abilities of design and operation of information systems;

—     ability to apply IS project management principles and use IS project management tools to develop and implement information system with the desired quality in a given period of time;

—     ability to apply information technology to the analysis and development of IS, ability to apply the methods of processing graphics, ability to develop simple web sites, ability to use the scientific background, methodological literature in the specialty at the national and foreign languages;

—     ability to work in an interdisciplinary team of skills of critical analysis. The ability to train for scientific or other acquisition of professional qualifications;

—     ability to do analysis and interpretation of information from a variety of sources (electronic, written, archival, oral) as appropriate to the problem, integrating it critically into a grounded narrative;

—     ability to enrich the technological competency and appropriate terminology and modes of expression of the discipline in oral and written form in one’s own language and in the second language.

Programme learning outcomes

The graduate can demonstrate:

-      ability to apply knowledge of computing and mathematics appropriate to the discipline

-      Analyze a system, and identify and define the security risks and requirements for secure operation

-      Design, implement and evaluate a computer-based system, process, component or program to meet security needs

-      Address professional, ethical, legal, security and social issues and responsibilities

-      Communicate effectively with a range of audiences

-      Analyze the local and global impact of computing on individuals, organizations and society

-      Recognize the need for and an ability to engage in continuing professional development

-      Use current techniques, skills and tools necessary for computing security practice

-      Identify and analyze security risks of an information system

-      Develop security and recovery policies appropriate to an information system

-      ability to developing, implementing and exploiting information retrieval systems, information management systems, expert systems, organizational information systems;

-      to be able to test and debug program complexes of information systems, to install, configure and administer network services of computer networks;

-      ability to manage the project of development, implementation and support of information systems, to know the organization of separate stages of professional activity objects development process with the desired quality in a given period of time;

-      ability to choose the technology, tools at the organization of process of development and deployment of professional activity objects, skills of training of the personnel within the accepted organization of professional activity objects development process;

-      ability to design architecture of information systems components, design the human-machine interface of hardware-software complexes, design mathematical, linguistic, information, program and technical support of information systems on the basis of modern methods, tools and technologies of design, including with use of systems of the automated design;

-      to be able to create and investigate mathematical and program models, computing and information processes connected with functioning of objects of professional activity;

-      ability to evaluate, select and apply analytical and measurement methods/tools and system development lifecycle methodologies to meet organizational needs;

-      communicate well with both technical and business partners orally and in writing.

-      analyze network designs, topologies, architectures, protocols, communications, administration, operations, and resource management for wired, wireless, and web-based networks;

-      prescribe Information Assurance initiatives to protect an organization’s information assets by ensuring availability, confidentiality, integrity, authenticity, and non-repudiation;

-      develop a security architecture consisting of tools, techniques, and technologies to prevent the penetration of networks, to detect attacks, and to design effective countermeasures;

-      ability to develop or choose mathematical models, methods, computer technologies and systems of decision support in scientific researches, management of technological, economic and social systems;

-      research activity in the field of the information technology and information systems theory and practice;

-      implementation of pedagogical activity with broad application of multimedia and other information technologies;

-      ability to develop personal qualities of self-learning at the end of the training program, to expand their knowledge on the basis of information and educational technology; knowledge of how to convey to information, to overview periodicals, make reviews, and improve programming skills; preparation of analytical reports;

-      demonstrate an understanding of professional ethical principles and work ethically in pursuit of truth, accuracy, fairness and diversity;

-      demonstrate skills of using digital technologies and creating web sites;

-      think critically, creatively and independently;

-      knowledge of the classification of computer networks, especially modern network technology, hardware and software of computer networks, the means and methods of transmission, transformation and presentation of information in networks;

-      critically evaluate their own work and that of others for accuracy and fairness, clarity;

-      create the systems of information protection;

— ability to interpersonal communication and group work.